Welcome to the Monastery | |
PerlMonks |
Re: Re: User regexpsby paulbort (Hermit) |
on Jan 15, 2004 at 20:37 UTC ( [id://321662]=note: print w/replies, xml ) | Need Help?? |
Whether you can trust your users isn't an issue. Whether you can trust anyone who might come across your UI anytime in the future is an issue. Out of general paranoia our CGI wrapper drops any characters that are not in {A-Za-z0-9-\/.@,: }. (And ':' was a recent addition, to support entering URLs.) -- Spring: Forces, Coiled Again!
In Section
Seekers of Perl Wisdom
|
|